$ rpki-client -vvf rpki.apnic.net/member_repository/A9120522/1C3DA3ACF0A611EA959D764AC4F9AE02/2E6008624A5711F0BD4BC13AC4F9AE02.roa File: 2E6008624A5711F0BD4BC13AC4F9AE02.roa (raw, json) Hash identifier: CJo3Y0RDZ6WOA9pdaOgsipKbuYOBA79WFUuGjeqh4aQ= Subject key identifier: 81:2C:A9:23:8C:A9:BA:60:70:C7:23:5E:B4:86:22:81:AC:C2:B1:2E Certificate issuer: /CN=A9120522/serialNumber=4DBFB7C0F2D8576BA508F36369198B8491C2B334 Certificate serial: 0800 Authority key identifier: 4D:BF:B7:C0:F2:D8:57:6B:A5:08:F3:63:69:19:8B:84:91:C2:B3:34 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Tb-3wPLYV2ulCPNjaRmLhJHCszQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9120522/1C3DA3ACF0A611EA959D764AC4F9AE02/2E6008624A5711F0BD4BC13AC4F9AE02.roa Signing time: Tue 26 Aug 2025 21:31:07 +0000 ROA not before: Tue 26 Aug 2025 21:31:07 +0000 ROA not after: Sat 31 Oct 2026 00:00:00 +0000 asID: 24181 IP address blocks: 202.49.16.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9120522/1C3DA3ACF0A611EA959D764AC4F9AE02/Tb-3wPLYV2ulCPNjaRmLhJHCszQ.crl rsync://rpki.apnic.net/member_repository/A9120522/1C3DA3ACF0A611EA959D764AC4F9AE02/Tb-3wPLYV2ulCPNjaRmLhJHCszQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Tb-3wPLYV2ulCPNjaRmLhJHCszQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 Oct 2025 22:02:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2048 (0x800) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9120522, serialNumber=4DBFB7C0F2D8576BA508F36369198B8491C2B334 Validity Not Before: Aug 26 21:31:07 2025 GMT Not After : Oct 31 00:00:00 2026 GMT Subject: CN=68ae279b-adfd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:ef:e2:91:b1:eb:a1:1c:b4:53:80:62:43:5b: 5c:09:13:ac:14:cf:8d:4a:a7:3e:d8:7f:7e:86:be: aa:0e:2f:fe:cf:30:f5:eb:c2:20:c1:22:82:f1:3e: e1:b3:c6:f8:fb:5b:93:18:b5:b0:92:13:a6:e7:4c: 8b:db:48:17:60:cf:71:15:a7:8d:50:7e:ae:8f:ec: 0c:6f:bb:58:49:0f:a8:0f:44:78:8f:27:55:cf:22: 41:7a:9c:e6:38:e8:78:e1:f0:16:cb:b2:55:3b:e8: 25:99:69:5d:e7:2c:5e:57:20:23:5a:24:31:e9:26: c4:47:7d:47:09:a6:eb:e0:4d:9c:f9:3c:cd:8c:98: be:0e:24:dd:c8:a8:39:df:67:81:35:63:9b:0a:d9: e0:12:5c:b8:e1:66:50:81:cf:fa:36:ac:5b:70:3b: ca:20:70:30:49:cc:55:0a:7f:b5:b1:3d:82:2c:6b: 39:aa:df:99:ec:4a:5d:0f:23:22:df:bf:27:72:db: 89:69:05:17:8a:57:23:c7:0d:a3:65:91:9c:25:ba: 13:dd:60:4a:c9:02:5f:ef:28:b3:ef:2c:ad:f7:73: 9f:00:e2:e7:00:a4:6e:c9:41:d7:55:7e:21:d2:78: 1d:a6:8e:17:0e:a6:c3:6f:9a:94:09:70:22:eb:c2: 53:6b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 81:2C:A9:23:8C:A9:BA:60:70:C7:23:5E:B4:86:22:81:AC:C2:B1:2E X509v3 Authority Key Identifier: keyid:4D:BF:B7:C0:F2:D8:57:6B:A5:08:F3:63:69:19:8B:84:91:C2:B3:34 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9120522/1C3DA3ACF0A611EA959D764AC4F9AE02/Tb-3wPLYV2ulCPNjaRmLhJHCszQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Tb-3wPLYV2ulCPNjaRmLhJHCszQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9120522/1C3DA3ACF0A611EA959D764AC4F9AE02/2E6008624A5711F0BD4BC13AC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 202.49.16.0/22 Signature Algorithm: sha256WithRSAEncryption cf:ec:e7:cc:e5:50:90:89:1d:95:1a:c8:c0:fb:4a:a2:2d:9b: dd:92:b6:df:d7:dc:4a:26:ee:3b:24:81:da:b0:99:a2:ca:8e: e8:8e:0d:b4:cb:15:d6:c6:92:5b:ed:17:36:22:20:55:8e:e7: 68:9d:10:ac:64:be:1d:5c:4a:93:31:4b:87:f5:de:b4:a6:94: ec:a8:bd:d0:2f:96:32:99:77:b0:3d:9e:98:79:6d:fc:db:0b: 1d:5d:19:95:d5:96:91:2b:72:25:83:1f:5f:c8:08:32:fc:d0: cc:73:96:10:3e:25:49:43:26:a2:44:b3:11:7c:93:e3:61:8a: 16:17:14:91:ee:91:28:e6:aa:80:5e:ff:83:33:f5:6d:b2:87: e1:4e:e2:d9:22:50:46:d5:fd:f5:69:6b:59:db:82:d9:0f:23: 5c:2f:43:9c:4a:b9:69:9d:25:a9:22:77:1f:55:d4:f9:21:e9: a4:c1:23:00:d7:8d:fc:cc:da:c3:8c:8c:34:d8:52:1a:99:5a: a5:e8:e4:53:f8:01:3e:8b:e0:9d:d4:3e:eb:5f:17:26:c2:ad: 43:08:12:8b:64:44:bb:fb:fa:00:a3:0a:68:f5:7d:2a:ce:fd: d1:56:8b:65:2b:9b:a5:e2:d3:13:de:11:98:92:f2:63:75:70: fe:00:56:be -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICCAAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjA1MjIxMTAvBgNVBAUTKDREQkZCN0MwRjJEODU3NkJBNTA4RjM2MzY5MTk4Qjg0 OTFDMkIzMzQwHhcNMjUwODI2MjEzMTA3WhcNMjYxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OGFlMjc5Yi1hZGZkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAu+/ikbHroRy0U4BiQ1tcCROsFM+NSqc+2H9+hr6qDi/+zzD168IgwSKC8T7h s8b4+1uTGLWwkhOm50yL20gXYM9xFaeNUH6uj+wMb7tYSQ+oD0R4jydVzyJBepzm OOh44fAWy7JVO+glmWld5yxeVyAjWiQx6SbER31HCabr4E2c+TzNjJi+DiTdyKg5 32eBNWObCtngEly44WZQgc/6NqxbcDvKIHAwScxVCn+1sT2CLGs5qt+Z7EpdDyMi 378nctuJaQUXilcjxw2jZZGcJboT3WBKyQJf7yiz7yyt93OfAOLnAKRuyUHXVX4h 0ngdpo4XDqbDb5qUCXAi68JTawIDAQABo4IClTCCApEwHQYDVR0OBBYEFIEsqSOM qbpgcMcjXrSGIoGswrEuMB8GA1UdIwQYMBaAFE2/t8Dy2FdrpQjzY2kZi4SRwrM0 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyMDUyMi8xQzNEQTNBQ0Yw QTYxMUVBOTU5RDc2NEFDNEY5QUUwMi9UYi0zd1BMWVYydWxDUE5qYVJtTGhKSENz elEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1RiLTN3UExZVjJ1bENQTmphUm1MaEpIQ3N6US5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MjA1MjIvMUMzREEzQUNGMEE2MTFFQTk1OUQ3NjRBQzRGOUFFMDIvMkU2MDA4NjI0 QTU3MTFGMEJENEJDMTNBQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBALKMRAwDQYJKoZIhvcNAQELBQADggEBAM/s58zlUJCJHZUa yMD7SqItm92Stt/X3Eom7jskgdqwmaLKjuiODbTLFdbGklvtFzYiIFWO52idEKxk vh1cSpMxS4f13rSmlOyovdAvljKZd7A9nph5bfzbCx1dGZXVlpErciWDH1/ICDL8 0MxzlhA+JUlDJqJEsxF8k+NhihYXFJHukSjmqoBe/4Mz9W2yh+FO4tkiUEbV/fVp a1nbgtkPI1wvQ5xKuWmdJakidx9V1Pkh6aTBIwDXjfzM2sOMjDTYUhqZWqXo5FP4 AT6L4J3UPutfFybCrUMIEotkRLv7+gCjCmj1fSrO/dFWi2Urm6Xi0xPeEZiS8mN1 cP4AVr4= -----END CERTIFICATE-----Generated at Tue Oct 21 01:02:49 2025 by rpki-client